Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo parksite.com

Group: cactus

Discovered by ransomware.live: 2024-02-09

Estimated attack date: 2024-01-17

Country: US

Description:

Download link #1: https://***************.onion/PARKSITE/PROOFMirror: https://cactus5dqnqkppa5ayckiyk6dttpqwczdqphv5mxh4dkk5ct544q5aad.onion/PARKSITE/PROOF 


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • parksite-com.mail.protection.outlook.com.
TXT Records
  • apple-domain-verification=F9Fac2cTE3IzSird
  • v=spf1 include:spf.protection.outlook.com include:aspmx.pardot.com include:_spf.salesforce.com include:sendgrid.net ip4:192.254.115.42 -all
  • bw=bq8HEY6UVOknfmJG6cGzcyvhBD9lQ1dgZcD1jTGszpO2
  • MS=1033D02C1B66D4ED16126744F4F1730119E1594F
  • pardot211732=6b69a4dcea5d48363e7567765b0bfe789779d9071fa9d4237074182bccdae0a3
  • PydqTARHLZ+Jyde5v0HBFtSmpqNO9l1KAk9pdnZzGVE/7wPanUU8kK837u/UhKCwvP3Kn1nAp1urP8XNIfi0MA==
  • fa4591704c15fe1b65801eeda81c1587
  • M88E433FSZWEJC9CGEPQL3VBGNUT7KSFJKZM7B7N5MTJWQBAT7PMGJ9LJPP2G57E
  • infor-cloudsuite-domain-verification=M88E433FSZWEJC9CGEPQL3VBGNUT7KSFJKZM7B7N5MTJWQBAT7PMGJ9LJPP2G57E
  • atlassian-domain-verification=1tGjMlSweq98dVEwEnPxMUgozCvta5uRIbG58xmBSSur6Gdg8Ydt3UHvCUnMiws9
Cloud / SaaS Services Detected
Apple Atlassian Salesforce SendGrid

Leak Screenshot:

Leak Screenshot